$ rpki-client -vvf rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft File: kCs-s81I0JqgoQybLLKA0KDNLbo.mft (raw, json) Hash identifier: tpo12sWKYWHAoo5meyVeZSYM5FVAIKlWUSB5XdUTCPM= Subject key identifier: 48:7C:40:20:37:F0:C2:ED:4B:03:5C:F1:C6:ED:6F:CA:52:56:B3:B8 Authority key identifier: 90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA Certificate issuer: /CN=A915A161/serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Certificate serial: 1023 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft Manifest number: 1023 Signing time: Thu 18 Sep 2025 17:35:15 +0000 Manifest this update: Thu 18 Sep 2025 17:35:15 +0000 Manifest next update: Thu 25 Sep 2025 17:35:15 +0000 Files and hashes: 1: kCs-s81I0JqgoQybLLKA0KDNLbo.crl (hash: dysOLknFY9v1x+Sx11p7fmBDu29AmHQPjraP7xuZur4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4131 (0x1023) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A161, serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Validity Not Before: Sep 18 17:35:15 2025 GMT Not After : Sep 25 17:35:15 2025 GMT Subject: CN=68cc42d3-572a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:be:5b:60:65:43:b9:ea:37:5e:55:40:c0:54: b0:49:90:25:72:85:e5:50:27:0b:b2:43:9f:5b:41: f4:e3:2f:8d:64:2b:44:81:da:f5:a3:4a:27:95:ad: 4e:6c:3f:1c:c2:7a:d8:7d:0a:84:66:db:f2:75:79: 08:ed:d8:04:35:48:f8:c8:b3:e6:39:af:a8:a9:54: a6:80:63:85:47:70:f0:bc:04:c0:0e:ec:10:90:d9: 36:3c:48:8d:a0:2e:55:75:fa:e4:27:d1:88:99:bc: 74:75:c9:0d:7f:26:1f:ee:49:87:b2:15:75:bc:d0: 19:37:8d:35:89:fa:bd:11:c9:6e:11:94:7b:61:78: e1:ce:55:2a:6a:9a:6d:91:5f:e6:2a:da:b6:43:c1: 11:8e:31:bc:88:ff:24:11:1c:e8:8a:5f:5c:f8:c8: ed:8f:b1:68:7f:8e:32:ba:2b:07:50:89:4a:63:b4: 5b:0a:2b:f5:06:7d:47:9f:14:5e:ed:e3:68:0c:b3: 7b:01:75:cd:18:d1:59:63:13:05:8e:c3:65:a5:4e: 2f:7c:a5:d4:86:ef:04:12:9c:83:3a:36:88:6f:a9: 73:94:6e:06:37:8f:1c:c2:7f:73:dc:10:d6:40:34: ed:79:a5:c8:b0:7e:e3:d9:b4:bf:b0:f2:97:71:d6: 00:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:7C:40:20:37:F0:C2:ED:4B:03:5C:F1:C6:ED:6F:CA:52:56:B3:B8 X509v3 Authority Key Identifier: keyid:90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:72:e1:d7:b9:86:1e:62:e4:10:df:ed:00:ae:e6:03:e7:65: 22:5d:f6:a6:4b:ec:05:fb:1a:d6:bc:fb:44:f2:ad:2d:8c:f3: 62:60:37:5e:7a:76:fe:7c:3d:06:8b:b0:8d:ce:9d:eb:f8:e8: be:94:ed:38:c4:4d:56:07:28:13:57:69:5e:52:96:21:b7:b1: bc:7e:2d:d1:d8:f4:5c:34:e3:a1:87:ef:0b:6c:c3:90:2a:26: 36:56:99:e9:24:fb:46:3e:01:7e:3e:cb:7a:7f:39:25:eb:0d: f3:d8:0f:d5:32:1d:d9:55:eb:db:40:39:fe:14:62:7d:fd:14: 42:a0:7d:3c:1b:45:ef:69:b0:e8:d4:a8:80:ae:fc:22:72:64: 46:5c:38:16:0a:49:07:6a:ec:a2:e6:a7:44:88:73:6b:16:d0: e3:33:b6:98:9d:be:e2:8f:b4:f4:79:ae:b5:3d:0c:7c:4c:52: 1d:12:83:61:e4:1d:80:50:cd:5d:b6:49:2d:59:2c:33:9a:17: 44:6b:fb:f6:88:97:61:59:c6:ca:24:e2:ae:fa:49:8e:60:8c: 71:05:e3:4d:68:93:c5:22:52:c2:58:bd:f4:f6:ab:c0:e9:10: fd:15:45:a3:8b:5f:a3:85:25:79:37:35:d4:ed:e8:48:27:3e: 6b:d1:69:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUExNjExMTAvBgNVBAUTKDkwMkIzRUIzQ0Q0OEQwOUFBMEExMEM5QjJDQjI4MEQw QTBDRDJEQkEwHhcNMjUwOTE4MTczNTE1WhcNMjUwOTI1MTczNTE1WjAYMRYwFAYD VQQDEw02OGNjNDJkMy01NzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsL5bYGVDueo3XlVAwFSwSZAlcoXlUCcLskOfW0H04y+NZCtEgdr1o0onla1O bD8cwnrYfQqEZtvydXkI7dgENUj4yLPmOa+oqVSmgGOFR3DwvATADuwQkNk2PEiN oC5VdfrkJ9GImbx0dckNfyYf7kmHshV1vNAZN401ifq9EcluEZR7YXjhzlUqappt kV/mKtq2Q8ERjjG8iP8kERzoil9c+Mjtj7Fof44yuisHUIlKY7RbCiv1Bn1HnxRe 7eNoDLN7AXXNGNFZYxMFjsNlpU4vfKXUhu8EEpyDOjaIb6lzlG4GN48cwn9z3BDW QDTteaXIsH7j2bS/sPKXcdYAMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEh8QCA3 8MLtSwNc8cbtb8pSVrO4MB8GA1UdIwQYMBaAFJArPrPNSNCaoKEMmyyygNCgzS26 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTE2MS9CMDdCMkFCODRC MTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBKcWdvUXliTExLQTBLRE5M Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tDcy1zODFJMEpxZ29ReWJMTEtBMEtETkxiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTE2MS9CMDdCMkFCODRCMTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBK cWdvUXliTExLQTBLRE5MYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkcuHXuYYeYuQQ3+0AruYD52UiXfamS+wF+xrWvPtE8q0tjPNiYDde enb+fD0Gi7CNzp3r+Oi+lO04xE1WBygTV2leUpYht7G8fi3R2PRcNOOhh+8LbMOQ KiY2VpnpJPtGPgF+Pst6fzkl6w3z2A/VMh3ZVevbQDn+FGJ9/RRCoH08G0XvabDo 1KiArvwicmRGXDgWCkkHauyi5qdEiHNrFtDjM7aYnb7ij7T0ea61PQx8TFIdEoNh 5B2AUM1dtkktWSwzmhdEa/v2iJdhWcbKJOKu+kmOYIxxBeNNaJPFIlLCWL309qvA 6RD9FUWji1+jhSV5NzXU7ehIJz5r0WlA -----END CERTIFICATE-----Generated at Fri Sep 19 02:29:17 2025 by rpki-client